19 matches found
EUVD-2022-49180
Malicious code in bioql PyPI...
EUVD-2022-41732
Malicious code in bioql PyPI...
CVE-2022-46369
Rumpus - FTP server version 9.0.7.1 Persistent cross-site scripting PXSS – vulnerability may allow inserting scripts into unspecified input fields...
CVE-2022-46369
Rumpus - FTP server version 9.0.7.1 Persistent cross-site scripting PXSS – vulnerability may allow inserting scripts into unspecified input fields...
CVE-2022-46370
Rumpus - FTP server version 9.0.7.1 Improper Token Verification– vulnerability may allow bypassing identity verification...
Design/Logic Flaw
Rumpus - FTP server version 9.0.7.1 Improper Token Verification– vulnerability may allow bypassing identity verification...
Cross site scripting
Rumpus - FTP server version 9.0.7.1 has a Reflected cross-site scripting RXSS vulnerability through unspecified vectors...
PT-2023-14919 · Rumpus · Rumpus
Name of the Vulnerable Software and Affected Versions: Rumpus versions 9.0.7.1 Description: The issue is related to improper token verification, which may allow bypassing identity verification. Recommendations: For version 9.0.7.1, at the moment, there is no information about a newer version that...
CVE-2022-39187
CVE-2022-39187 concerns Rumpus - FTP server 9.0.7.1 with a Reflected cross-site scripting (RXSS) vulnerability through unspecified vectors. Multiple connected sources corroborate RXSS in this version; details on vectors, exploitability, and affected components are not consistently provided across...
Rumpus FTP Web File Manager 数据伪造问题漏洞
Rumpus FTP Web File Manager is a file transfer server. A security vulnerability exists in Rumpus FTP Web File Manager version 9.0.7.1, which stems from improper token validation that could allow bypassing authentication...
Rumpus FTP Web File Manager 跨站请求伪造漏洞
Rumpus FTP Web File Manager is a file transfer server. A security vulnerability exists in Rumpus FTP Web File Manager version 9.0.7.1, which originates from a vulnerability that could allow unauthorized operation on behalf of an authenticated user...
PT-2023-14917 · Rumpus · Rumpus
Name of the Vulnerable Software and Affected Versions: Rumpus - FTP server version 9.0.7.1 Description: The issue is related to cross-site request forgery CSRF, which may allow unauthorized actions to be taken on behalf of authenticated users. Recommendations: For Rumpus - FTP server version...
PT-2023-13710 · Rumpus · Rumpus
Name of the Vulnerable Software and Affected Versions: Rumpus - FTP server version 9.0.7.1 Description: The issue is related to a Reflected cross-site scripting RXSS vulnerability. This vulnerability can be exploited through unspecified vectors. Recommendations: For version 9.0.7.1, update to a...
Rumpus FTP Web File Manager 跨站脚本漏洞
Rumpus FTP Web File Manager is a file transfer server. A security vulnerability exists in Rumpus FTP Web File Manager version 9.0.7.1 that originates from a vulnerability that could allow scripts to be inserted into unspecified input fields...
CVE-2022-39187 Rumpus - FTP server Reflected cross-site scripting (RXSS)
Rumpus - FTP server version 9.0.7.1 has a Reflected cross-site scripting RXSS vulnerability through unspecified vectors...
CVE-2022-46370 Rumpus - FTP server Improper Token Verification
Rumpus - FTP server version 9.0.7.1 Improper Token Verification– vulnerability may allow bypassing identity verification...
CVE-2022-46369 Rumpus - FTP server Persistent cross-site scripting (PXSS) – Unspecified vector
Rumpus - FTP server version 9.0.7.1 Persistent cross-site scripting PXSS – vulnerability may allow inserting scripts into unspecified input fields...
Security Bulletin: IBM Security Access Manager is vulnerable to a bypass security vulnerability (CVE-2020-4461)
Summary A bypass security vulnerability was fixed in IBM Security Access Manager 9.0.7.1 Vulnerability Details CVEID: CVE-2020-4461 DESCRIPTION: IBM Security Access Manager could allow an authenticated user to bypass security by allowing idtoken claims manipulation without verification. CVSS Base...
Security Bulletin: A security vulnerability was fixed in IBM Security Access Manager
Summary A XML External Entity Injection vulnerability was fixed in ISAM 9.0.7.1 Vulnerability Details CVEID: CVE-2019-4707 DESCRIPTION: IBM Security Access Manager Appliance is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this...